From 6ad3392056b876b722a9e4f784ba159a0549ab9f Mon Sep 17 00:00:00 2001 From: Eduardo Figueroa Date: Thu, 4 Dec 2025 18:43:20 +0000 Subject: [PATCH] feat(traefik): Add local-only IP allowlist middleware Add IP allowlist middleware to restrict services to local network (10.0.0.0/16). Allows services to be protected from external access while remaining accessible on LAN. --- compose/core/traefik/compose.yaml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/compose/core/traefik/compose.yaml b/compose/core/traefik/compose.yaml index 2863e55..cd49998 100644 --- a/compose/core/traefik/compose.yaml +++ b/compose/core/traefik/compose.yaml @@ -42,6 +42,9 @@ services: traefik.http.routers.traefik.service: api@internal traefik.http.routers.traefik.middlewares: tinyauth + # IP Allowlist Middleware for local network only services + traefik.http.middlewares.local-only.ipallowlist.sourcerange: 10.0.0.0/16 + networks: homelab: external: true